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DETAILED ACTION 



Claim Rejections - 35 USC § 102 

1 . The following is a quotation of the appropriate paragraphs of 35 U.S.C. 102 that 
form the basis for the rejections under this section made in this Office action: 

A person shall be entitled to a patent unless - 

(b) the invention was patented or described in a printed publication in this or a foreign country or in public 
use or on sale in this country, more than one year prior to the date of application for patent in the United 
States. 

2. Claims 1-32 rejected under 35 U.S.C. 102(b) as being anticipated by "Internet 
Authentication Service for Windows 2000" hereafter referred to as IAS. 

3. Astoclaim(s) 1, 16, 17: 

IAS teaches a method for integrating a plurality of servers comprising: 

• Transmitting an authentication request from a first server to authenticate a user 
in a database registry / the NAS forwards the authentication request to an IAS 
server in the form of a RADIUS Access-Request packet (Page 8, Line 16, IAS) 

• Authenticating the user in the database registry / Directory contains user account 
data (Page 8, Fig 1 , IAS) 

• First server constructing a credential of the user / The IAS server verifies that the 
RADIUS Access-Request packet is sent from a configured RADIUS client by 
checking the source IP address. If the Access-Request packet was sent by a 
valid RADIUS client and digital signatures are enabled for the RADIUS client, the 
digital signature in the packet is checked using the shared secret (Page 8, Lines 
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18-22, IAS). User information is transmitted though the NAS placed in an access 
request packet can be interpreted as constructing a credential of the user. 
• Accessing a resource from a second server based on the credential of the user 
and a protection policy applied to the resource in an object name space 
associated with the first server / User attempts to connect to a network (resource) 
associated with first server (NAS) (Page 8, Line 9, IAS) 

4. As to claim(s) 2: 

First server is an authentication server / Network Access Server (Page 8, Fig 1 , IAS). 
The network access server takes part in the authentication process and can therefor be 
defined as an authentication server. 

5. As to claim(s) 3: 

Second server is an application server / IAS server uses software to function and can 
therefore be defined as an application server (Page 8, Line 23, IAS) 

6. As to claim(s) 4: 

Plurality of servers are heterogeneous servers / Servers employ differing functionality 
and can therefor be defined as heterogeneous servers (Fig 1, Page 8, IAS) 



7. As to claim(s) 5: 
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Application constructs a credential of the user using a user identifier and a user 
password / the user's credentials (User name and password) are authenticated against 
the user name and password of the accounts database (Page 51 , Lines 4-8, IAS) 

8. As to claim(s) 6: 

Registry information in the existing database includes at least one user registry 
information and group registry information / users credentials are authenticated against 
the user name and password of the accounts database. The group membership of the 
user account is then determined (Page 51 , Lines 4-9, IAS) 

9. As to claim(s) 7: 

Servers integrated with an use of an adapter / If the IAS server computer is returning 
the Access-Accept message using a different network adapter from the one on which 
the Access-Request message was received, the NAS may not recognize the message 
and discard it. In this case, you can add persistent static IP routes to the routing table of 
the IAS server computer so that the Access-Accept messages to the NAS are sent out 
on the same interface on which the Access-Request messages are received. (Page 
108, Lines 25-30, IAS) 

10. As to claim(s) 8: 

Adapter is a user registry adapter / the network adapter processes user registry 
information and can therefore be defined as a user registry adapter. 
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11. As to claim(s) 9: 

Storing a definition of the user in a database associated with the second server / IAS 
(Second server) consults an authentication module.... The user's credentials (User 
name and password) are authenticated against the user name and password of the 
accounts database (Page 51 , Lines 4-8 f IAS) 

12. Astoclaim(s) 10, 11: 

Creating an application server database in the second server / Protecting application 
specific data required for an operation of the second server / Application specific 
database is a meta — data database / If the authentication of the credentials is not 
successful, an Access-Reject packet is sent and the authentication failure event is 
logged in the system event log or the IAS authentication log, depending on the 
configured logging settings. (Page 51, Line 10-13, IAS) 

13. As toclaim(s) 12: 

Resource is a web resource / IAS can be set up to support a corporation that has 
outsourced its remote dial-up access to an Internet service provider (ISP) (Page 76, 
Lines 23-25, IAS). Access to the world wide web through internet connectivity can be 
defined as a web resource. 

14. Astoclaim(s) 13: 
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Receiving a disable request by an adapter integrating the plurality of servers responsive 
to disable request on second server / If the user is not authentic or the user's attempt to 
connect either does not match conditions in at least one policy or matches conditions in 
a policy that denies access, IAS sends a RADIUS Access-Reject message to the NAS 
(through network adapter), and the NAS disconnects the user (Page 9, Paragraph 4, 
IAS). 

15. As to claim(s) 14: 

Receiving the disqualification request by an adapter responsive to disqualify request on 
second server / If the user is not authentic or the user's attempt to connect either does 
not match conditions in at least one policy or matches conditions in a policy that denies 
access, IAS sends a RADIUS Access-Reject message to the NAS, and the NAS 
disconnects the user (Page 97, "Remote access Account Lockout", Paragraph 3, IAS). 
In IAS, the second server the Internet Authentication Server (second server) is 
responsible for authentication and the Network Access Server (first server) is 
responsible for access disqualification prompted by the IAS through the network 
adapter(s). 

Remove a definition associated with user from a first database associated with the 
second server / the definition of the user as being valid is removed 
Removing definition associated with the user from second database with second server 
/ If the authentication of the credentials is not successful, an Access-Reject packet is 
sent and the authentication failure event is logged in the system event log or the IAS 
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authentication log, depending on the configured logging settings. (Page 51, Line 10-13, 
IAS) 

16. As to claim(s) 15: 

First database is a registry database and the second database is a metadata base/ 
Directory contains user account data (Page 8, Fig 1 , IAS) / If the authentication of the 
credentials is not successful, an Access-Reject packet is sent and the authentication 
failure event is logged in the system event log or the IAS authentication log, depending 
on the configured logging settings. (Page 51, Line 10-13, IAS) 

17. Claims 18-32 correspond to claims 1-15 

Conclusion 

1 8. Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Jonathan R Adams whose telephone number is 

(571 )272-3832. The examiner can normally be reached on Monday - Friday from 10am 
to 6pm. 

19. If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Gregory Morse, can be reached on (703) 308-4789. The fax phone number 
for the organization where this application or proceeding is assigned is (571)272-3838. 
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Any inquiry of a general nature or relating to the status of this application or proceeding 
should be directed to the receptionist whose telephone number is (703) 305-3900. 




nrr,r.ms MORSE 



I 



